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(54) Method for operating a conditional access system for broadcast applications 



(57) In a method for operating a conditional access 
system for broadcast applications, the conditional ac- 
cess system comprising a number of subscribers and 
each subscriber having a terminal including a condition- 
al access module and a secure device for storing enti- 
tlements, a source signal is encrypted using a first key 
(C J. The encrypted source signal is broadcasted for re- 
ceipt by the terminals, wherein entitlement control mes- 
sages (ECM's) are sent to the secure devices, the 
ECM's comprising the first keys (C J encrypted using a 
service key (Px). Entitlement management messages 
(EMM'S) are sent to the secure devices providing the 
service key (Py) required to decrypt encrypted first keys 
(C^). A cracked secure device which is used in an un- 



authorised manner is traced by sending different keys 
required to obtain the first keys to different terminals or 
groups of terminals and monitoring the key information 
provided by a pirate. To this end search EMM's are sent 
to at least a part of the temiinals, the search EMM's pro- 
viding at least the service key (Pj) and a dummy key 
(Pdi o'' Pd2)- search EMM's comprise iden- 

tifiers identifying the keys (Pj and Pqi or Ppg), wherein 
first search EMM's with the keys (Pj and PgO are sent 
to a first part of the terminals and second search EMM'S 
with the keys (Pj and Pd2) a''© sent to a second part of 
the temiinals An ECM identifying the service key (Pj) to 
be used to decrypt the encrypted first key (C^). is sent 
to all secure devices just before the first key (C^) is 
needed to decrypt the source signal. 
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Description 

[0001] The invention relates to a method for operating 
a conditional access system for broadcast applications, 
said conditional access system comprising a number of 
subscribers, each subscriber having a terminal includ- 
ing a conditional access module and a secure device for 
storing entitlements, wherein a source signal is encrypt- 
ed using a first key (Cyv), said first key (C^) being 
changed at a high rate, said encrypted source signal be- 
ing broadcasted for receipt by the terminals, wherein en- 
titlement control messages (ECM's) are sent to the se- 
cure devices, said ECM's comprising the first keys (Cw) 
encrypted using a service key (Py), wherein entitlement 
management messages (EMM's) are sent to the secure 
device providing the service key (Pj) required to decrypt 
encrypted first keys (Cw). wherein a cracked secure de- 
vice which is used in an unauthorised manner Is traced 
by sending different keys required lo oblain the first keys 
to different terminals or groups of temriinals and moni- 
toring the key Information provided by a pirate. 
[0002] Conditional access systems for broadcast ap- 
plfcations are used for example in pay television opera- 
tions wherein one has to subscribe to be entitled to 
watch a channel, a service or an event. In view of the 
high numbers of subscribers and thereby high numbers 
of secure devices distributed among the subscribers, 
the secure devices are open to attack by unauthorised 
persons trying to extract the unique key of a secure de- 
vice. The secure devices are generally pnsvlded in the 
form of smart cards. If an unauthorised person or pirate 
succeeds to extract the unique key, the smart card is 
cracked and the pirate is able to distribute global keys 
over the internet, for example the first key or sen/ice key, 
to set up a pirate subscriber network. 
[0003] When the service provider establishes that the 
conditional access system has been hacked, it is nec- 
essary to trace the cracked smart card or smart cards. 
A known method to trace a cracked smart card is to per- 
form a so-called binary search on the base of smart 
cards which have been issued. According to this known 
method, a false key is published to half the smart cards 
and a true key to the other half. The pirate will publish 
either the false or true key on the internet and from the 
key published by the pirate, It is possible to narrow down 
to which half of the base the cracked smart card be- 
longs. In a next step again a false key Is published to 
one half of this located half of the base of smart cards 
and a true key to the other half of the base and again It 
can be deduced from the key published by the pirate in 
which half the cracked smart card is located. By repeat- 
ing these steps, the cracked smart card can be located 
and switched off. A disadvantage of such a binary 
search is that legal subscribers will continuously see 
blacked out screens during the time the search is per- 
formed. If such search activities are repeatedly neces- 
sary and continue for long periods, this will lead to sub- 
scriber dissatisfaction. 



[0004] The invention aims to provide a method of the 
above-mentioned type wherein causing blacked out 
screens at legal subscribers is restricted as much as 
possible or even completely avoided. 

5 [0005] To this end the method of the invention is char- 
acterized in that search EMM's are sent to at least a part 
of the temriinals, said search EMM's providing at least 
the service key (Pj) and a dummy key (Po^ or Pd2). at 
least the search EMM's comprising identifiers identify- 
to ing the keys (Pj and Ppi or P^), wherein first search 
EMM'S with the keys (Pj and Pq^) are sent to a first part 
of the terminals and second search EMM's with the keys 
(Pj and Pd2) s®"^ ^ second part of the tenninals, 
wherein an ECM Identifying the service key (P-p) to be 

15 used to decrypt the encrypted first key (Cw), is sent to 
all secure devices just before the first key (Cy^) is need- 
ed to decrypt the source signal. 
[0006] In this manner It Is obtained that at ail legal sub- 
scribers, the secure device receives the identification of 

so the service key to be used to decrypt the first key in time 
before the first key is needed to decrypt the source sig- 
nal. Therefore there will be no blacked out screens at 
legal subscribers. However, when the pirate receives 
the identification of the service key to be used, the pirate 

25 has insufficient time to publish the correct key in ad- 
vance. The delay time between the receipt of the Iden- 
tification of the service key to be used and the encrypted 
source signal to be decrypted with the first icey is too 
short to distribute the correct key over the internet. 

30 Therefore, if the pirate does not publish all keys availa- 
ble to the pirate, the pirate subscribers will have blacked 
out screens repeatedly depending on the rate of pub- 
lishing dummy keys. In view of the publishing of all keys 
available to the pirate, the same type of binary search 

35 as in the prior art can be applied to locate the cracked 
smart card. 

[0007] According to a further embodiment of the 
method of the invention, a set of search EMM's is sent 
to the tenninals, each search EMM providing two keys 

40 (P-pand Pdi, P^-and P^ P^-and P^^)- In this manner 

the number of iteration steps in the binary search can 
be significantly reduced depending on the size of the set 
of search EMM's. 

[0008] As an alternative embodiment, a set of search 
45 EMM'S is sent to at least a portion of the terminals, each 
search EMM of the set comprising a different dummy 
key (Pq) and each EMM being sent to a different part of 
the terminals. 

[0009] In this manner the cracked smart card or smart 
50 cards used by the pirate can be located in a few or even 
only one step so that although a blacked out screen will 
be seen by the legal subscribes, this will not lead to sub- 
scriber dissatisfaction. 

[0010] In a further alternative embodiment of the 
55 method of the invention the encrypted source signal 
comprises a stream of data packets, wherein succes- 
sive groups including at least one data packet, are en- 
crypted using successive first keys (Cvy^i.Ov^a' • 
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Cwi, Cwn). each data packet having a flag indicating 
* the first key (Cwi) to be used for decrypting the data 
packet, wherein in stead of an ECM identifying the serv- 
ice key (Pt) an EClVI identifying a dummy key (Pqi or 
*Pd2) to be used to decrypt a next encrypted first key 
(Cwi). 's sent to the secure devices of the first and sec- 
ond parts of the terminals, respectively, just before the 
first key (C^) is needed to decrypt the source signal, 
whereas the data packet is encrypted using the previous 
first key(Cwi-i) 

[0011] In this manner the pirate is forced to respond 
to the ECM by transmitting the first key decrypted by 
using a dummy key, to the pirate decoders. By means 
of this false key published by the pirate the cracked 
smart card can be traced. The service provider actually 
uses the previous first key to scramble the next data 
packet so that all subscribers can descramble this data 
packet using the previous first key which is normally stiil 
available in the decoder. 

[0012] The invention will be further explained by ref- 
erence to the drawings in which an embodiment of a 
conditional access system for broadcast applications is 
shown, in which an embodiment of the method of the 
invention is implemented. 

[0013] Fig. 1 schematically shows a conditional ac- 
cess system for broadcast applications, in which an em- 
bodiment of the method of the invention is implemented. 
[0014] ' Fig. 2 schematically shows an example of a 
key hierarchy for use in the conditional access system 
of fig. r. 

[0015] In the broadcasting application shown, three 
broadcasters 1-3 are coupled with a multiplexer unit 4 
comprising means for scrambling, encoding and com- 
pressing broadcast signals provided by the broadcast- 
ers 1 -3. The thus obtained digital data streams are mul- 
tiplexed into a digital transport stream, for example in 
accordance with the MPEG-2 standard. In the embodi- 
ment shown this digital transport stream is modulated 
by way of a modulator 5 before transmission. The oper- 
ator of the equipment including the multiplexer unit 4 and 
modulator 5 is responsible for transmitting the signal to 
the receiving equipment of the public, one television set 
6 being shown by way of example. The transmission of 
the signal may be carried out through one or more tele- 
communication channels including a satellite link 7, ter- 
restrial link 8 or a cable system 9. One or more of the 
broadcasters 1 -3 may be private broadcasters operat- 
ing according to the concept of pay television, which im- 
plies subscription. This means that people wishing to 
view programs broadcasted by a particular broadcaster, 
have to subscribe to such a broadcast, and pay the ap- 
propriate fee. 

[001 6] Access to anyone of the broadcast signals pro- 
vided by the broadcasters 1-3 requires a terminal 10 
which for the subscription requiring services includes a 
conditional access module 11 and a secure device 12, 
generally provided in the form of a smart card which can 
be connected to the conditional access module 11 . The 



remaining part of the terminal 1 0 is known as such and 
needs not be described in detail. 
[0017] In the broadcast application of fig. 1 . for exam- 
ple broadcaster 1 may be a pay television operator using 

5 a conditional access system with a number of subscrib- 
ers, each subscriber having a terminal 10 with condi- 
tional access module 11 and smart card 12. Such a con- 
ditional access system may use a key hierarchy, an ex- 
ample of which Is schematically shown in fig. 2. The 

10 broadcaster side is shown at the left, whereas the sub- 
scriber side is shown at the right of fig. 2. As shown the 
broadcaster scrambles the source signal by means of a 
scrambler 13, wherein the source signal is scrambled 
using a first key or control word Cy^. In this manner an 

15 encrypted source signal is obtained which is multiplexed 
by the multiplexer 4. At the subscriber's side, the en- 
crypted source signal Is descrambled to obtain the clear 
source signal In a descrambler 1 4 using the first key C^. 
For security reasons, the key is generally changed 

20 at the high rate, for example every ten seconds. 

[0018] The control word or first key C^^ is sent to the 
subscribers in so-called entitiement control messages 
or ECM's which are scrambled as indicated by reference 
numeral 15 using a service key Pj. These scrambled 

25 ECM's are decrypted at the subscriber's side using the 
same service key Py, as indicated by reference numeral 
16, At a higher level of hierarchy the service keys are 
sent in so-called entitlement management messages or 
EMM'S in a scrambled manner as indicated by reference 

30 17 using a group key G and these scrambled EMM's are 
descrambled at the subscriber's side using the same 
group key G as indteated by reference 18. Finally, a 
group key can be distributed to subscribers using indi- 
vidual smart card keys and/or smart card addresses. It 

35 will be understood that this example of key hierarchy is 
described by way of non-limiting example only. 
[0019] As a large number of smart cards 12 is distrib- 
uted among the subscribers of broadcaster 1, these 
smart cards are open to attack by unauthorised persons 

40 or pirates to extract the secret individual key from the 
smart card. If a pirate succeeds In extracting the individ- 
ual key, the pirate is able to obtain any of the keys used 
in the conditional access system in the clear and he can 
distribute keys over the internet to subscribers of his pi- 

45 rate network. 

[0020] If the broadcaster 1 notices that one or more 
of his smart cards 12 have been cracked, he can start 
a search for the cracked smart card or smart cards in 
the following manner. 

so [0021] Instead of the usual EMM's distributing servtee 
keys Pj, special search EMM's are sent to the terminals 
10, wherein a search EMM provides a true service key 
Pj and a false or dummy key P^^ to half of the subscrib- 
ers and the tme servfce key Pj and a second dummy 

55 key Pq2 to the other half. Usually an EMM comprises an 
identifier for the service key and in the same manner the 
search EMM's also comprise identifiers for the keys Pj 
and Pdi or Ppa- 01 course these search EMM's will be 
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received both by the legal subscribers and by the pirate. 
A very short time before the service key Pj Is to be used 
to decrypt a control word Cy,, an ECM is published in- 
cluding an identifier indicating the key to be used to de- 
crypt the control word C^, I.e. the true service key P-p. 
[0022] The advance warning provided by the ECM 
comprising the identifier of the sen/ice key Py, is just 
sufficient to decrypt the control word C^^ before the con- 
trol word Is needed to decrypt the encrypted source sig- 
nal. This means that although the pirate also receives 
the identifier of the true service key Pj, there is insuffi- 
cient time for the pirate at the publishing of the ECM to 
publish the correct key Py in advance on the internet. If 
the pirate does not take any further action, the pirate 
subscribers will have blacked out screens every few 
minutes of even seconds. This means that the pirate is 
forced to publish the keys required to decrypt the ECM 
in advance of the ECM being transmitted. Through pub- 
lishing either dummy key Pp^ or Pq2» the pirate can be 
located by consecutive iteration steps as described 
above. 

[0023] The method described shows the advantage 
that there will be no blacked out screens at the legal 
subscribers, as the smart card 1 2 at the legal subscrib- 
ers has sufficient time to use the correct service key to 
descramble the control word C^. 
[0024] in order to restrict the number of iteration 
steps, a set of search EMM's could be used, wherein 
each search EMM of the set provides two keys, i.e. the 
true service key Py and a dummy key Py^ or P^ or ... 
Pdp. Each EMM of the set is sent to a different group of 
smart cards, so that the dummy key Pq} published im- 
mediately indicates the group of smart cards to which 
the cracked one belongs. 

[0025] As a further complication to a pirate the follow- 
ing method can be applied, wherein some characteris- 
tics of an encrypted source signal are used. Generally 
the encrypted data stream comprises data packets, 
wherein each next data packet or group of data packets 
is scrambled using a next first key C^^. A header flag of 
the data packet or group of data packets indicates the 
serial number i of the first key used for scrambling so 
that the terminal 1 0 knows which of the first keys pro- 
vided must be used for descrambling a data packet or 
group received. According to the invention an ECM is 
transmitted which indicates that the next key will be one 
of the dummy keys Pq^ or Ppg. However, the next data 
packet or group is scrambled using the previous first key 
Cyyj.^. As the pirate can not distinguish between the dif- 
ferent keys and can not predict whether an indication to 
use a specific key is true or not, the pirate will be forced 
to publish the key descrambled using the dummy key. 
Through publishing this descrambled key the pirate can 
be located by consecutive iteration steps as described 
above. At the subscribers the header flag of the data 
packet will cause use of the control word 0^/].^, so that 
normal operation of the terminal is obtained. This meth- 
od can be used advantageously in case a pirate has a 



very fast responding system, which would allow the pi- 
rate to publish decrypted first keys only in stead of the 
dummy key Itself. 

[0026] In an alternative embodiment of the method 

s described, a cracked secure devtee can be traced by 
using a type of cryptography, wherein it is possible to 
generate a set of keys, each key being capable of de- 
crypting the same cryptogram. As an example of such 
type of cryptography an RSA multiple-key cryptographic 

10 algorithm or a secret-sharing algorithm can be used. As 
the cryptography as such is not a part of the present 
invention, reference is made to the book Applied Cryp- 
tography by Bruce Schneier, in particular chapter 23, for 
a further explanation of this type of cryptography. For 

15 example the EMM's are encrypted using a multiple-key 
algorithm having a set of keys Pj capable of decrypting 
the EMM. Depending on the number of keys of the set 
and the number of terminals, each terminal or each 
group of tenminals is provided with a different key P,, so 

20 that if a pirate rebroadcasts the key, the source, i.e. the 
cracked secure device, can be traced. It is also possible 
to apply this special type of cryptography on the source 
signal, so that in stead of one control word Gyy a set of 
control words C| is capable of decrypting the encrypted 

25 source signal. 

[0027] The same result can be achieved with a secret- 
sharing algorithm, wherein one or more shares are re- 
quired to derive the key required for obtaining the control 
words. By distributing different shares to different termi- 

30 nals or groups of terminals, the cracked secure device 
can be traced. 

[0028] It Is noted that the number of keys or shares 
need not to be large. By varying the grouping structure, 
i.e. the distribution of the terminals on the different 

35 groups, it is possible to trace the cracked secure device 
by monitoring the sequence of keys or shares which are 
rebroadcast by the pirate. It is observed that the same 
method of varying the grouping structure can be used 
in all above-described embodiments of the invention. 

40 [0029] If it is deemed acceptable that legal subscrib- 
ers will have a very restricted number of blacked out 
screens during a search for a cracked smart card, the 
following method could be used. A special set of search 
EMM'S is distributed to all smart cards, wherein each 

45 group of subscribers receives a false service key Pp. 
The pirate will distribute the false service key which 
identifies the group to which the cracked smart card be- 
longs. Within this group in a further step the cracked 
smart card can be located by distributing within the 

50 group a further set of false keys. 

[0030] In the embodiments described the conditional 
access module 1 1 and the secure device 12 are shown 
as physically separate devices. It will be understood that 
the conditional access module and/or the secure device 

55 can also be part of the terminal 10 or implemented in 
the terminal 1 0 by suitable programming. Therefore, the 
terms conditional access module 11 and secure device 
12 as used in the specification and claims are not re- 
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. strlcted to physically separate parts. 
[0031 ] The invention Is not restricted to the above-de- 
scribed embodiments which can be varied in a number 

,of ways within the scope of the claims. 



Claims 

1 . Method for operating a conditional access system 
for broadcast applications, said conditional access 
system comprising a number of subscribers, each 
subscriber having a temninallncluding a conditional 
access module and a secure device for storing en- 
titlements, wherein a source signal is encrypted us- 
ing a first Icey (Cw), said first key (0^) being 
changed at a high rate, said encrypted source sig- 
nal being broadcasted for receipt by the temnlnafs, 
wherein entitlement control messages (ECM's) are 
sent to the secure devices, said ECM's comprising 
the first keys (Cw) encrypted using a service key 
(P-j-), wherein entitlement management messages 
(EMM'S) are sent to the secure device providing the 
service key (P-r) required to decrypt encrypted first 
keys (Cyv). wherein a cracked secure device which 
Is used in an unauthorised manner is traced by 
sending different keys required to obtain the first 
keys to different terminals or groups of terminals 
and monitoring the key infomnation provided by a 
pirate, characterized in that search EMM's are sent 
to at least a part of the terminals, said search EMM's 
providing at least the service key (Pt) and a dummy 
key (Pdi 0^ Pds). at 'east the search EMM's com- 
prising identifiers identifying the keys (Pj and Ppi 
or P02), wherein first search EMM's with the keys 
(Pj and Pdi) are sent to a first part of the tenninals 
and second search EMM's with the keys {Pj and 
Pd2) a''® ^^^^ t° a second part of the terminals, 
wherein an ECM Identifying the service key {Pj) to 
be used to decrypt the encrypted first key (Cw). is 
sent to all secure devices just before the first key 
(Cyv) is needed to decrypt the source signal, 

2. Method according to claim 1 , wherein the encrypted 
source signal comprises a stream of data packets, 
wherein successive groups including at least one 
data packet, are encrypted using successive first 
keys (Cwi.Cw2. Cyvi. ■ Cwn). each data packet 
having a flag indicating the first key (Cyvi) to be used 
for decrypting the data packet, wherein in stead of 
an ECM Identifying the service key {Pj) an ECM 
identifying a dummy key (Pq^ or Pq2) to be used to 
decrypt a next encrypted first key {O^), is sent to 
the secure devices of the first and second parts of 
the terminals, respectively, just before the first key 
(Cyvi) is needed to decrypt the source signal, where- 
as the data packet Is encrypted using the previous 
first key(Cvvi.i). 



3. Method according to claim 1 or 2, wherein a set of 
search EMM's Is sent to the terminals, each search 
EMM providing two keys (Pj and Pdi. Pt ^"^1 
Pd2 Pxarid Pon)- 

5 

4. Method according to the preamble of claim 1, 
wherein a set of search EMM's Is sent to at least a 
part of the terminals, each search EMM of the set 
comprising a different dummy key (Pq) and each 

10 EMM being sent to a different part of the tenminals. 

5. Method according to claim 3 or 4, wherein the ter- 
minals are divided into groups, wherein In a first 
search step the number of search EMM's of the set 

15 of search EMM's corresponds to the nu£Db.eL.of^ 
groups. 

6. Method according to the preamble of claim 1 , 
wherein the source signal orthe ECM's are encrypt- 

20 ed using a multiple-key or secret-sharing crypto- 
graphic algorithm having a plurality of different de- 
crypting keys or shares (C,;P,) required for decrypt- 
ing the encrypted source signal or ECM's, respec- 
tively, wherein said plurality of different decrypting 

25 keys or shares (Cj;P|) are sent to at least a part of 
the terminals such that different temiinals or groups 
of tenminals receive different keys or shares (C,;Pi) 
according to a predetermined distribution. 

30 7. Method according to any one of the preceding 
claims, wherein the distribution of the terminals in 
groups of temriinals is varied to trace the cracked 
secure device. 

35 
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